Vulnerabilities > Siemens > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-07-13 CVE-2021-34320 Out-of-bounds Read vulnerability in Siemens Jt2Go and Teamcenter Visualization
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2).
local
low complexity
siemens CWE-125
5.5
2021-07-13 CVE-2021-34321 Out-of-bounds Read vulnerability in Siemens Jt2Go and Teamcenter Visualization
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2).
local
low complexity
siemens CWE-125
5.5
2021-07-13 CVE-2021-34322 Out-of-bounds Read vulnerability in Siemens Jt2Go and Teamcenter Visualization
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2).
local
low complexity
siemens CWE-125
5.5
2021-07-13 CVE-2021-34325 Out-of-bounds Read vulnerability in Siemens Jt2Go and Teamcenter Visualization
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2).
local
low complexity
siemens CWE-125
5.5
2021-07-13 CVE-2021-34332 Unspecified vulnerability in Siemens Jt2Go and Teamcenter Visualization
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2).
local
low complexity
siemens
5.5
2021-07-13 CVE-2021-34333 Unspecified vulnerability in Siemens Jt2Go and Teamcenter Visualization
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2).
local
low complexity
siemens
5.5
2021-07-12 CVE-2021-22918 Out-of-bounds Read vulnerability in multiple products
Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII.
network
low complexity
nodejs siemens CWE-125
5.3
2021-06-16 CVE-2020-27339 Improper Input Validation vulnerability in multiple products
In the kernel in Insyde InsydeH2O 5.x, certain SMM drivers did not correctly validate the CommBuffer and CommBufferSize parameters, allowing callers to corrupt either the firmware or the OS memory.
local
low complexity
insyde siemens CWE-20
6.7
2021-06-11 CVE-2021-22897 Exposure of Resource to Wrong Sphere vulnerability in multiple products
curl 7.61.0 through 7.76.1 suffers from exposure of data element to wrong session due to a mistake in the code for CURLOPT_SSL_CIPHER_LIST when libcurl is built to use the Schannel TLS library.
network
low complexity
haxx oracle netapp siemens splunk CWE-668
5.3
2021-06-09 CVE-2020-12357 Improper Initialization vulnerability in multiple products
Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel netapp siemens CWE-665
6.7